I face the similar issue mentioned in this thread and tried to follow the suggested configuration, yet I still cannot observe legitimate, allowed traffic on the relevant epo reports. Here is how I ve configured the report:
Moreover, I ve changed the "web control events to log" to "All" ( Policy Catalog > ENS Common > Options ) plus all the event logging in ( Policy Catalog > ENS Web Control > Options ) exept the web reporter option. Still no events on the epo about allowed sites browsing by the endpoint.
Could you please be more specific on the exact configuration that has to be made on the ePO in order to observe such events?